Starting today, Riscosity is available on AWS Marketplace, a digital catalog of software listings from independent software vendors that makes finding, testing, buying and deploying software that runs on Amazon Web Services (AWS) simple. This new partnership enables companies using AWS cloud services to easily purchase a Riscosity license directly from the marketplace, streamlining risk management and the deployment of Riscosity into their current security stack.

Remote access to company resources through web browsers has grown exponentially in recent years. With that growth comes an increased risk of exposing sensitive information and critical systems to customers, employees and contractors, on insecure or unmanaged devices.

Mobile phones have revolutionized the way we work, granting unprecedented freedom and flexibility to access emails and communicate from virtually anywhere. However, this convenience comes with its own set of risks, particularly when it comes to email security. With the rise in remote work and the increasing reliance on mobile devices, employees are now responding to work emails at all hours, often on personal devices.

As we enter the age of AI, we’ve seen the first wave of AI adoption in software development in the form of coding assistants. Now, we’re seeing the next phase of adoption take place, with organizations leveraging increasingly widely available LLMs to build AI-enabled software. Naturally, as the adoption of LLM platforms like OpenAI and Gemini grows, so does the security risk associated with using them.

Atlas Oil, a major player in the oil and fuel distribution industry, fell victim to a ransomware attack orchestrated by the Black Basta group. This attack not only compromised sensitive company data but also exposed a variety of documents that could potentially harm the company’s operations and reputation. Overall, Black Basta claims to have exfiltrated approximately 730 GB of data.

In the realm of industry and infrastructure, Operational Technology (OT) refers to hardware and software systems designed to monitor and control physical devices. OT is a cornerstone in managing and automating essential services in a variety of sectors including utilities, manufacturing, and transportation. Key elements of OT include Industrial Control Systems (ICS) and Industrial Automation, which support critical infrastructure operations.

eBPF is one of the most widely used technologies in today’s computing ecosystem, starting from the cloud sector up to routing and tracing in companies like Cloudflare. Many companies are basing and transforming their core products to use eBPF as an alternative to kernel modules because of all the benefits it offers both on the business side and technological side. Since this shift is gaining a lot of momentum I wanted to shed some light on eBPF.

Identity and access management (IAM) plays a crucial role in security by helping to ensure that each user in the organization has access to only the data, systems, and other resources they need to do their job. This article explains the critical functionality of IAM solutions and how an IAM assessment can help you uncover essential risks to security, compliance, and business continuity. Then, it offers IAM best practices and guidance on choosing the right IAM solutions for your organization.

Code signing has successfully established itself in the backdrop of the rapidly transforming digital space as a critical security mechanism for software distribution. Through the digital signing of source code, developers and publishers offer users confidence about their software’s validity, founder, and quality. Though cyber threats had been positively enhanced, the demands for a high level of compliance and strict code signing requirements had become more necessary.

A Signed Driver is a software entity which is usually a device driver or can be a kernel module and has been signed cryptographically by its developer or producer using its digital signature. This mark renders a unique identification and authentication mechanism ensuring authorship and integrity protection. Signed drivers are the main actors who guarantee the system’s safety and stability by permitting only trusted and verified software components to communicate with the kernel.